원문정보
초록
영어
Public key infrastructure (PKI) is a powerful tool for protecting information. Currently a
PKI system shows a trend toward an emerging global PKI which becomes more complicated.
The global PKI has to handle an enormous number of queries for cryptographic certificates
which attest the authenticity of public keys. So a decentralized organization of the PKI is
advantageously. Therefore we developed a specialized Peer-to-Peer-PKI model realizing
efficient search and transfer of certificates and trust-recommendations. Our model based on
our own rigorous binary tree algorithm and has four advantages. First, there is no any
bottleneck problem when establishing a certification path or authenticating. Second, the
authentication path is short with two constant logic steps. Third, in our model the entities
need to mutual authenticate don’t need to inquire or download the CRL. Fourth, it’s easy to
extend and suitable for large-scale network.
목차
1. Introduction
2. Related Works
3. Preliminaries
3.1 Basic PKI principles
3.2 Certification Path Discovery
4. RBT-P2P network model
5. PKI based on RBT-P2P network
5.1 The base of trust
5.2 The web of trusted
6. System implementation
6.1 Initialization
6.2 Joining the P2P-PKI
6.3 Expanding the P2P-PKI model
6.4 Authentication between two entities.
6.5 Certificate revocation.
7. Security analysis
7.1 Managing the failure of peers
7.2 Prevention of DoS attack
8. Conclusion
9. Acknowledgement
10. References